Security Auditing

  • What is Security Auditing?

    HEAnet’s Security Auditing service covers systems, networks, equipment, staff action, and the institution’s IT activity as a whole.

    Security Auditing is offered by HEAnet as a comprehensive, holistic review of an institution’s security readiness, which could involve on-site visits.

  • Service Profile Infographic

Screen Shot 2016-04-25 at 10.54.01

  • Why do I Need Security Auditing?

    IT administrators gain a commanding overview of their system’s readiness against threats through a Security Audit. This is essential in developing an integrated and up-to-date IT security strategy.

    This process requires experienced members of the HEAnet team working on-site at an institution, and allows HEAnet to assess all aspects of the institution’s operations. It combines a rigorous, physical examination of a client’s system and associated equipment, with detailed scanning and assessment of existing e-infrastructure.

  • The process involves a dedicated scoping exercise. This allows for a lining-up of the organisation’s resources, and to centre the environment in which the audit will be applied.

    Key Asset Identification

    Engagement with members of staff is essential as information on resources and practices are gathered by the HEAnet audit team. This is followed-up by identifying key assets of the institution and how to best protect them.

    Through deep network scanning, probing for vulnerabilities through the entire network ranges, the assessment of a client’s whole network is possible.

    With security tools like NESSUS and others, the vulnerability of client networks to the very latest security hazards can be properly assessed.

Contact HEAnet

Support for Security Auditing is provided through the HEAnet NOC.

You can contact the HEAnet NOC by emailing noc@heanet.ie or by calling 01-660-9040, Monday to Friday, 09:00 – 17:30.

The HEAnet NOC is committed to ensuring every client receives a consistent, responsive service with an emphasis on minimising client disruption.